Judiciary Committee Chairman Senator Lindsey Graham opened the hearing by asking the panelists if Congress should pass a federal privacy law at all, and if they thought we should have “one national standard”—a potentially dangerous idea, as it could preempt stronger existingstatelaws. The panelists more or less supported a single national law, though we were glad to see Dr. Johnny Ryanargue that a federal law should preempt state law only to the extent that it provides greater protections. Dr. Fiona M. Scott Morton further clarified that even with a strong federal standard, states were still going to want to regulate on top of the law.

Troublingly, when discussing whether or not states should be able to create their own protections for consumers, Chairman Graham said, “It’s my job to make sure we have a viable [digital advertising] industry when this is all done.” But enacting a law that would protect the advertising industry at the expense of his constituents and their privacy is antithetical to the Chairman’s job. Previous hearings on data privacy have featured witness panels stacked with industry advocates, and corporate interests threatening to hollow out existing data privacy laws. Consumers are relying on Congress to resist this pressure, not bow to it.

The rest of the hearing turned to discussions of the role competition plays in a healthy innovation landscape, how to engineer meaningful consent, and who actually owns users’ data.

In his opening statement, Dr. Johnny Ryan urged the Committee “to enact strong privacy rules so that a healthy marketplace can develop. Give consumers freedom to choose the companies and services they want to reward.” He reiterated this point in response to many questions over the course of the hearing, arguing that if people truly had a choice in the services they use online, it would allow them to deny the use of their data in operations which they found unacceptable, which would, in turn, undermine those business models.

In EFF’s letter to the NTIA on consumer privacy, we advocated for a consumer data privacy law that would allow users to delete and port their data, and we argued that interoperability between platforms would give consumers a real choice about what services to use. As Dr. Scott Morton mentioned, the real benefit to the social media platforms is that “all your friends” are also on the platform, but if your friends go elsewhere, you will too. Forcing interoperability among social media platforms, like the way the FCC once mandated interoperability between instant messaging platforms, would provide an incentive to compete for users.

Some elected officials (including the Governor of California) seem to think it would also be a good idea to allow users to directly profit from the sale or use of their data. We disagree. In this hearing, Senator Coons brought up the idea of allowing users to treat their own personal data as a thing to be bartered away in exchange for benefits from companies. Fortunately, the witnesses pushed back on this troubling idea. While it may sound appealing, putting this idea into law would treat privacy not as the a fundamental humanright it is, but as a luxury item to be enjoyed by the people who can afford it.

While it’s difficult to draw one or two discrete conclusions from this hearing, it’s heartening to see Senators wrestling with thorny questions and having a real conversation with experts. We look forward to many more of these conversations in the future.

Related Updates

The full weight of U.S. policing has descended upon protesters across the country as people take to the streets to denounce the police killings of Breonna Taylor, George Floyd, and countless others who have been subjected to police violence. Along with riot shields, tear gas, and other crowd control...

Your phone is your life. It’s where you communicate, get your news, take pictures and videos of your loved ones, relax and play games, and find a significant other. It can track your health, give you directions, remind you of events, and much more. It’s an incredibly helpful tool, but...

EFF has joined a broad coalition of civil liberties, civil rights, and labor advocates to oppose A.B. 2261, which threatens to normalize the increased use of face surveillance of Californians where they live and work. Our allies include the ACLU of California, Oakland Privacy, the California Employment Lawyers Association, Service...

In the wake of nationwide protests against the police killings of George Floyd and Breonna Taylor, we urge protestors to stay safe, both physically and digitally. Our Surveillance Self Defense (SSD) Guide on attending a protest offers practical tips on how to maintain your privacy and minimize your digital...

With states beginning to ease shelter-in-place restrictions, the conversation on COVID-19 has turned to questions of when and how we can return to work, take kids to school, or plan air travel.Several countries and U.S. states, including the UK, Italy, Chile, Germany, and California, have expressed interest in...

When it comes to surveillance of our online lives, Internet service providers (ISPs) are some of the worst offenders. Last year, the state of Maine passed a law targeted at the harms ISPs do to their customers when they use and sell their personal information. Now that law is...

COVID-19, and containment efforts that rely on personal data, are shining a spotlight on a longstanding problem: our nation’s lack of sufficient laws to protect data privacy. Two bills before Congress attempt to solve this problem as to COVID-19 data. One is a good start that needs improvements. The other...

In a landmark decision, the German Constitutional Court has ruled that mass surveillance of telecommunications outside of Germany conducted on foreign nationals is unconstitutional. Thanks to the chief legal counsel, Gesellschaft für Freiheitsrechte (GFF), this a major victory for global civil liberties, but especially those that live and...